In the complex hardware and software hybrid system, the rapid increase of the software scale and the system complexity bring the important challenge to the software security modeling. There are still many functional or semantic problems for traditional modeling language and modeling method, when they are used into the security modeling. Therefore, based on the Architecture Analysis and Design Language (AADL), this paper proposes the AADL error model and extracted the timing fault tree. After comprehensive analysis by using the common factor failure analysis and the hardware and software failure analysis, we can obtain the generation mechanism of danger. By establishing the AADL multi-view security model of the software system, and converting it into the Timed Abstract State Machine (TASM) and the Markov model, this paper forms a method of the security verification and evaluation based on extended AADL model. Finally, we confirm the effectiveness of the proposed method by performing security analysis for an instance.
[1]
Peter H. Feiler,et al.
Model-Based Engineering with AADL: An Introduction to the SAE Architecture Analysis & Design Language
,
2012
.
[2]
Dong Yun.
Reliability Analysis and Assessment Tool for AADL Model
,
2011
.
[3]
Rajendra Kumar,et al.
Accurate reliability modeling using Markov Analysis with non-constant hazard rates
,
2009,
2009 IEEE Aerospace conference.
[4]
A. Saltelli,et al.
Reliability Engineering and System Safety
,
2008
.
[5]
Gregory Levitin,et al.
BDD-based reliability evaluation of phased-mission systems with internal/external common-cause failures
,
2013,
Reliab. Eng. Syst. Saf..